Java users beware: Exploit circulating for just-patched critical flaw

Found on Ars Technica on Tuesday, 23 April 2013

If you haven't installed last week's patch from Oracle that plugs dozens of critical holes in its Java software framework, now would be a good time. As in immediately. As in, really, right now.

Oracle describes the vulnerability as allowing remote code execution without authentication. And that means you should install the patch before you do anything else today.

Why do people still bother with Java? Maybe Oracle fixed a few critical holes, but I bet there are still tons left and it won't take long until it hits the news again. It's by far the worst piece of software you can install.

Browse all articles« Previous « » Next »